User role get following error message when trying to give read/write permission on look-up table:
Splunk could not update permissions for resource data/lookup-table-files Client is not authorized to perform requested action
User has created the lookup file in an app where permission = read and write to everyone.
So why can't the user give permission on look-up table?
I'm wondering if this is not more of a file system level permissions issue. You may want to check out your file system and ensure the system level user that starts Splunk has write access to the directory in which you're trying to create said lookup.